[erlang-patches] [PATCH] ei: prevent overflow in ei_connect_init/ei_xconnect

Björn Gustavsson bgustavsson@REDACTED
Mon Aug 23 16:03:48 CEST 2010


On Sun, Aug 22, 2010 at 4:15 AM, Michael Santos
<michael.santos@REDACTED> wrote:
> Check the length of the buffer before copying.
>
> ei_cnode ec;
> struct in_addr addr;
> char *node = (char *)calloc(5001, 1);
> (void)memset(node, 'x', 5000);
>
> ei_connect_init(&ec, node, "", 0);
>
> addr.s_addr = inet_addr("192.168.1.1");
> ei_xconnect(&ec, &addr, node);
> ---
>  lib/erl_interface/src/connect/ei_connect.c |    8 ++++++--
>  lib/erl_interface/src/epmd/epmd_port.c     |   12 ++++++++++++
>  2 files changed, 18 insertions(+), 2 deletions(-)
>

Thanks! Will include in pu.

-- 
Björn Gustavsson, Erlang/OTP, Ericsson AB


More information about the erlang-patches mailing list